Juniper SRX Room for Improvement
I have not given a lot of thought as to what needs to be improved because so much of technology and capabilities are expanding.
Probably Juniper could come up with their own dedicated endpoint security. Today they have an integration with Sophos. If you really look at what SRX has as far as antivirus capability, it is really only the integration with Sophos. Sophos is good, I am not saying Sophos is a bad solution. But Juniper having their own antivirus solution may be a batter idea to make it a stand-alone product.
If you look at Check Point. They have a lot of experience in the area of security which is integrated with their product. In comparison, Juniper could start developing its own strong capabilities with antivirus and have its own security which may even surpass relying on Sophos. Sophos could improve more but it is definitely a wonderful architecture.
IPS, or IDS services, need improvement. Their major problem is that you have to integrate it with MSN or web building services, you need to buy support for that and services but you cannot. The best thing that I see was a filtering service with custom categories that I can create. If I buy a license, I can integrate it with a different product, but their own web building services is poor. So they can improve web building services, as well as look for application awareness, and maybe, with IPS, they can have their own built-in services rather than integration with MSN for using IPS. There are three things that can be improved.
IPS is one that I would definitely want to be improved. I would also like SSL VPN to be integrated. Other than that, I guess it's doing a firewall, so I would say it's cool. Next in features, I would want that to be included, along with SSL VPN, if possible. Other than that for the product, I don't think there's a need for doing anything with this.View full review »
Project manager at computer care company
The training videos that are available need to be improved, and made more educative. This will help users to become more familiar with the product.View full review »
Senior Network Administrator at a manufacturing company with 201-500 employees
The reliability needs to be improved. We purchased three devices and all three have been replaced under RMA. We've had other problems where they have needed to be rebooted.
A couple of times I've run into the problems where they have to integrate with other systems. The Juniper support really doesn't have a clue about other systems. They know Juniper and if everything is Juniper then it's great. However, we have Windows RADIUS Servers and I need Juniper-specific settings for them. Unfortunately, they're having a real hard time telling me what those should be, and they keep referring back to it being Microsoft, which they don't support. When they say that I need to speak with Microsoft, I remind them that these are things that are defined in the Juniper configurations that I need to set up. They seem to forget that not everybody is exclusively Juniper.View full review »
Consultant at a financial services firm with 5,001-10,000 employees
I've noticed that the management interface could use some updates and upgrades.
The dashboard can be updated.
The reporting could be more robust and in-depth.
I've looked into the Check Point firewall a bit and I've found that its anti-spoofing is a good feature. Juniper should consider adding that as a feature.
I've only just begun to really use the product. I only have one year of experience so far. It's still new to me. Therefore, it's hard to make any notes on any features or improvements, as I'm still familiarizing myself with everything. I need time to compare it to other firewalls, and I have not gone through the process of doing that just yet. I need more time.
Pre-Sales Analyst at a tech services company with 201-500 employees
Our operational team handles the solution more than I do. I personally haven't seen any features that are missing per se.
The solution isn't very granular or detailed. However, we're just using the basics anyway.
The product could have a quicker response when it comes to technical support getting back when we have questions.View full review »
Their models for service providers could improve. We are an MSP, we resell services and I think the company could have a better program for service providers because our needs are different from our regular customer that is buying it for.
More recently we started using the GUI interface and that looks pretty shameful and needs improvement.
Juniper has a different product line that has artificial intelligence capabilities. In the future, we would like to see that extended to the SRX line.View full review »
Network Engineer & Cyber Security Analyst at a tech services company with 201-500 employees
While the GUI is pretty good on the Juniper side, there can still be tweaks made to it that will make it even better.View full review »
It must be 5G ready. The 5G network is rolling out soon in India, and Juniper must upgrade their firewall slot to the 5G network, or they must manufacture a 5G dongle card for the Juniper firewall. I want Juniper to upgrade their dongle from 4G to 5G.
Presently, they have an expansion slot in the SRX 322 series and higher firewalls. In that expansion slot, they can put a 4G mobility SIM card so that whenever our primary link is down, it will automatically connect through this GSM network and form a tunnel.View full review »
Integrator at a tech services company with 11-50 employees
As a networking person, I don't really have any major issues with this device. Based on my experience of using it in a cluster, it could be more stable. I had an incident when one of the SRXs in a cluster couldn't learn ARP.
It is a good solution, but firewalls don't seem to be an area of development for Juniper. They are focusing on data centers, routers, and switches, not firewalls.View full review »
Technical Lead at a tech services company with 10,001+ employees
It was very difficult to deal with and required a lot of support, and the UI is very poor.
I didn't like this product at all.
We faced many issues with the power supply causing many outages with this SRX box.
We experienced outage issues when load-balancing between two availability architectures, which had an effect on the availability.
Once we started to deal with this solution, it was very difficult to troubleshoot. It was not straightforward at all when comparing to Cisco.
We always had support tickets. More than 50 tickets per month exceeded the SLA by more than two weeks.
Better support is needed.
In the next release, this solution needs to be stable, offer better support, better pricing, and less expensive to migrate.View full review »
Director at a tech services company with 1-10 employees
The solution could cost less. It's a bit expensive right now.
The solution sometimes takes a long time to deliver the products. We're often waiting for stock. They should just have the product available and ready to go when customers need it.View full review »
The workplace management console needs improvement. It should be a little bit more developed. Also, the interface needs a bit more improvement.
If the solution would have an intuitive interface would be much better because the work-based interface is not so perfectly developed and it's not ideal. It's not complete yet, and it makes it difficult for beginners and first-time users of this solution. As it is, for new users, it would make it very difficult for them to deploy this solution. Otherwise, the rest is fine. There's no other problem with it.
I think with this Juniper product, the CPU switch could be improved for a better overall performance of traffic flow. I'd also like to see a threat intelligence feed which would hopefully monitor the network traffic flowing through the SRX to detect malware and other content.
Network Security Engineer at a tech services company with 201-500 employees
We are experiencing some issues with the clustering. It needs to be simplified and more stable.
Some of the features included in SRX need improvement. For example, if you want to change your SSH port number, you cannot go into the application layer. You will have to go to the shell command to change the port. This is a problem because when you show the configuration, you cannot see what was put in the shell. It should easier.
Also, the user interface is a bit slow.
In the future, I would like to see the UI more responsive. The new generation doesn't use SSH anymore. One-click would be better.View full review »
Senior Product Manager at a tech services company with 51-200 employees
There are a lot of features that customers do not know about and I think that better documentation would help when it comes to learning how to use the product.
Technical support could be improved by adding local engineers.View full review »
Juniper SRX's UI is very bad. We have to use CLA all of the time and Sky ATP.
If I compare Fortinet with SRX, particularly for filtering websites and email addresses, SRX is very very difficult.View full review »
Team Manager - Networks at a tech services company with 1,001-5,000 employees
When we first tested the serial interface on our model, it did not work.
It should be easier to escalate support tickets.View full review »
Senior Network Engineer at a tech services company with 10,001+ employees
I think it needs some automation. I have to find an API for Python and so on, which is quite different from a typical solution. Sometimes committing configurations takes a lot of time in Juniper because of the connections, and it could be a little bit faster. Their documentation could also be better.View full review »
Pre-sales manager at RETO Industrial S.A. de. C.V.
They recently improved this solution. Currently, I feel comfortable with Juniper in general.
The user interface and the GUI need improvement.
In the next release, I would like to see mobile support.View full review »
Head Of Network & Technical Support at a financial services firm with 501-1,000 employees
The configuration is difficult and it should be easier.View full review »
Technology Services Director at a tech services company with 11-50 employees
The throughput when using features can be improved.
100-gigabit interfaces should be added into the next release because we'd like to adopt them.
The setup process should be improved.View full review »
IToV Implementation Engineer at a renewables & environment company with 5,001-10,000 employees
The interface could be more user-friendly.View full review »
Linux admin at a wholesaler/distributor with 51-200 employees
It could be more secure.View full review »
User at UNACOOPEC
In terms of other features, I'd like to see a web filter, 10 point control, application control and DNA features in the next release.View full review »